Which command sets the maximum # of secure MAC addresses allowed on a switch port?

S1(config-if)# switchport port-security maximum 50

Which command verifies port security settings?

S1# show port-security int f0/1

Which command displays all secure MAC addresses configured on all switch interfaces?

S1# show port-security address

If a network admin enters these commands on a switch, what will be the result?
Switch1(config-line)# line console 0
Switch1(config-line)# password cisco
Switch1(config-line)# login

to secure console port access with password cisco

Which command line interface (CLI) mode allows users to configure switch parameters, such as the hostname and password?

global configuration mode

What happens when the transport input ssh command is entered on the switch vty lines?

Communication between the switch and remote users is encrypted.

A network administrator uses the CLI to enter a command that requires several parameters. The switch responds with “% Incomplete command”. The administrator cannot remember the missing parameters. What can the administrator do to get the parameter information?

append a space and then ? to the last parameter

When a switch receives a frame and the source MAC address is not found in the switching table, what action will be taken by the switch to process the incoming frame?

The switch will map the source MAC address to the port on which it was received.

The switch and workstation are administratively configured for full-duplex operation. What will or won’t happen on this link?

No collisions will occur on this link.

The partial output of the show running-config command. The enable password on this switch is “cisco.” What can be determined from the output shown?

Any configured line mode passwords will be encrypted in this configuration.

What 2 important characteristics about Layer 2 Ethernet switches are true?

* Dynamically learned secure MAC addresses are lost when the switch reboots
* If fewer than the maximum number of MAC addresses for a port are configured statically, dynamically learned addresses are added to CAM until the maximum number is reached.

What are 2 ways to make a switch less vulnerable to attacks like MAC address flooding, CDP attacks, and Telnet attacks?.

Change passwords regularly.
Turn off unnecessary services.

What action does SW1 take on a frame sent from PCA to PCC if the MAC address table of SW1 is empty?

SW1 floods the frame on all ports on SW1, except for the port that received the frame.

The network admin has decided to allow only SSH connections to Switch1. After the commands are applied, the admin is able to connect to Switch1 using both SSH and Telnet. What is most likely the problem?

missing transport input ssh command

Where is the startup configuration stored?

NVRAM

The switch and the hub have default configurations, and the switch has built its CAM table. Which of the hosts will capture a copy of the frame when workstation A sends a unicast packet to workstation C?

workstation C

What happens when Host 1 attempts to send data?

Frames from Host 1 cause the interface to shut down.

Which hosts will receive a broadcast frame sent from Host A?

hosts B, C, D, and E

What is SVI (switched virtual interface)?

a special IP address Cisco switches can be configured with – used for remote access to the switch

Using the command switchport port-security – sets the maximum MAC addresses to what? And, the violation action to what?

Maximum 1 MAC address
Violation action to shutdown

VLAN 99 has been configured as the management VLAN with an IP address and subnet mask. Show interface VLAN99 output display shows the line protocol is down? Which action can change the state of the line?

Connect a host to an interface associated with VLAN 99

What would be an ideal environment to carry out penetration tests?

an off-line test bed network that mimics the actual production network

A network technician wants to implement SSH as the means by which a router may be managed remotely. What are 2 procedures that the technician should use to use SSH?

configure authentication
define the asymmetrical keys

What refers to a protocol that provides an encrypted connection? The protocol replaces the clear text Telnet protocol for Cisco device management.